The Evolution of the AppDirect Kubernetes Network Infrastructure — from KubeCon & CloudNativeCon
5 days ago, ambassador

The Evolution of the AppDirect Kubernetes Network Infrastructure — from KubeCon & CloudNativeConLast month at KubeCon & CloudNativeCon in Seattle, Pierre Lacerte, Director of Engineering, and Alex Gervais, Staff Software Developer spoke about the evolution of their Kubernetes network infrastructure.AppDirect is a cloud commerce platform founded in 2009. They have ~200 engineers and are running 12 Kubernetes clusters that handle thousands of requests/minute. When they needed to make a decision ab...

Ambassador 0.50 RC5 available
1 week ago, ambassador

Ambassador 0.50 RC5 is now available. Ambassador 0.50 includes some significant architectural changes to Ambassador:Ambassador now uses Envoy’s v2 configuration, which allows us to support many commonly requested features such as SNI and gzip compression.Ambassador has vastly improved connection draining semantics under load (> 1000 requests per second), as Ambassador 0.50 uses Envoy’s Aggregated Discovery Service API for configuration changes, instead of hot restart.A new test suite (built on K...

2019 Trends: GitOps with Ambassador
1 week ago, ambassador

Across the industry, thought leaders are arguing that Kubernetes has become so stable it’s actually boring (in a good way!). This means the tech is at a point where organizations can simply use the platform without losing their focus on delivering business value. That means we can expect community adoption of Kubernetes to continue to grow in 2019. Despite this, there are still plenty of unanswered questions around developer experience. We think GitOps will be the hot developer experience trend ...

Ambassador 0.50 RC4 available
1 week ago, ambassador

Ambassador 0.50 RC4 is now available. RC4 contains several bug fixes, most important of which is that Ambassador works reliably on Azure Kubernetes Services again (thanks again to the AKS engineering team for helping root cause the issue). More details below.Ambassador 0.50 includes some significant architectural changes to Ambassador:Ambassador now uses Envoy’s v2 configuration, which allows us to support many commonly requested features such as SNI and gzip compression.Ambassador has vastly im...

Rate Limiting at the Edge
2 weeks ago, ambassador

I’m sure many of you have heard of the “Death Star Security” model — the hardening of the perimeter, without much attention paid to the inner core — and while this is generally considered bad form in the current cloud native landscape, there is still many things that do need to be implemented at edge in order to provide both operational and business logic support. One of these things is rate limiting.Rate Limiting for Business and Operational RequirementsModern applications and APIs can experien...

Ambassador 0.50 RC3 available
2 weeks ago, ambassador

Happy New Year! We’re announcing Release Candidate 3 of Ambassador 0.50. A very grateful thank you to the many folks who reported bugs in RC1 (RC2 was a secret holiday release that some of you discovered, but we didn’t officially announce).We believe RC3 is very close to GA (see below for more details), and will be switching the default install version from 0.40.x to 0.50 very soon. Please test!Ambassador 0.50 includes some significant architectural changes to Ambassador:Ambassador now uses Envo...

Ambassador 0.50 Release Candidate 1
1 month ago, ambassador

We’re announcing Release Candidate 1 of Ambassador 0.50. RC1 addresses all known issues with Ambassador 0.50.Ambassador 0.50 includes some significant architectural changes to Ambassador:Ambassador now uses Envoy’s v2 configuration, which allows us to support many commonly requested features such as SNI and gzip compression.Ambassador has vastly improved connection draining semantics under load (> 1000 requests per second), as Ambassador 0.50 uses Envoy’s Aggregated Discovery Service API for con...

Scaling Your Edge Operations
1 month ago, ambassador

In traditional web applications, an API Gateway’s configuration is fairly static. A small number of monolithic applications are deployed on a predictable cadence. Each deploy may require a small configuration change in the API Gateway that is easily automated.Cloud-native applications change this dynamic. Dozens or hundreds of microservices may be deployed at the edge, requiring the services of the API Gateway. Each of these services require different configuration changes (after all, they’re in...

Ambassador 0.50 EA7 available
1 month ago, ambassador

Ambassador 0.50 includes some significant architectural changes to Ambassador:Ambassador now uses Envoy’s v2 configuration, which allows us to support many commonly requested features such as SNI and gzip compression.Ambassador has vastly improved connection draining semantics under load (> 1000 requests per second), as Ambassador 0.50 uses Envoy’s Aggregated Discovery Service API for configuration changes, instead of hot restart.A new test suite (built on KAT) that is faster and more comprehens...

Meet Up with the Ambassador Community at KubeCon & CloudNativeCon in Seattle
1 month ago, ambassador

The Ambassador team is excited to be heading to Seattle in a few weeks for KubeCon & CloudNativeCon! This will be our third time attending this conference as a team, and it’s been so exciting to see this conference and community grow. When we attended KubeCon in Austin last December there were 4,000 attendees, a number they are expecting to double in Seattle!Our favorite part of these conferences is connecting with Ambassador users in the hallways and at our booth to learn more about how you’re ...

Ambassador 0.40.2 release; updates on Ambassador roadmap
1 month ago, ambassador

We’re releasing Ambassador 0.40.2 today. 0.40.2 contains a few minor features and bug fixes for the stable 0.40 series. We expect that 0.40.2 will be the last production release of 0.40, as we are closing on GA of 0.50.0.40.2 adds:The ability to use environment variables to modify the configuration directory (thanks to @n1koo)Support for volumeMounts in the Helm chart (thanks to @kyschouv)Correctly quote .Values.namespace.single in the Helmfile (thanks to @bobby)Correctly support Nodeport in HTT...

Best of the Ambassador Blog: Fall Edition — Canary Releases, Service Mesh, Distributed Tracing…
2 months ago, ambassador

Best of the Ambassador Blog: Fall Edition — Canary Releases, Service Mesh, Distributed Tracing, and more!Over the last few months we’ve been exploring the relation between edge proxies and service mesh as well as testing in production. With the help of our awesome community, the Ambassador dev team released distributed tracing support and is now working towards Ambassador 0.50 GA which contains some major architectural changes. We also launched the open-core Ambassador Pro which adds support for...

Ambassador 0.50 EA 6 is now available.
2 months ago, ambassador

Ambassador 0.50 includes some significant architectural changes to Ambassador:Ambassador now uses Envoy’s v2 configuration, which allows us to support many commonly requested features such as SNI and gzip compression.Ambassador has vastly improved connection draining semantics under load (> 1000 requests per second), as Ambassador 0.50 uses Envoy’s Aggregated Discovery Service API for configuration changes, instead of hot restart.A new test suite (built on KAT) that is faster and more comprehens...

Introducing Ambassador Pro: Secure, scale, and ship microservices
2 months ago, ambassador

Introducing Ambassador Pro (Beta): Secure, scale, and ship microservicesAt Datawire, our core strategy is to build the best open source API Gateway and ingress for Kubernetes. Over the past year, we’ve worked hard to build a Kubernetes-native API Gateway that both operators and developers love. At the same time, we’ve been exploring how to build a sustainable business that allows us to invest in both open source and commercial products that ultimately make Ambassador the best solution for everyo...

Testing in Production: Canary Releasing with Kubernetes
2 months ago, ambassador

No code is ever truly proven or tested until it’s running in production. This is particularly true of today’s cloud-native systems; these applications are rapidly evolving, continuously deployed, and have multiple layers of dependencies. As we’ve argued previously, this means that traditional testing strategies such as mocks, staging environments, and integration testing are not sufficient for testing cloud-native applications.Canary releasing is a technique to reduce the risk of introducing a n...

Testing in Production (safely!)
2 months ago, ambassador

Many moons ago, I was at a meetup in San Francisco and someone presented a meme that looked like this:I thought the speaker was crazy (and it was so long ago I can’t remember who it was). But the meme stuck!Over the past few years, I’ve seen how cloud applications are becoming complex, dynamic systems. They’re:Complex, with many dependencies on other cloud applications (e.g., databases, search, etc.); cloud services; and deployment environmentsDynamic, with many services being updated asynchrono...

Ambassador 0.50 EA 5 is available, adding Server Name Indication (SNI) support
2 months ago, ambassador

Ambassador 0.50 EA 5 is now available. Ambassador 0.50 includes some significant architectural changes to Ambassador:Ambassador now uses Envoy’s v2 configuration, which allows us to support many commonly requested features such as SNI and gzip compression.Ambassador has vastly improved connection draining semantics under load (> 1000 requests per second), as Ambassador 0.50 uses Envoy’s Aggregated Discovery Service API for configuration changes, instead of hot restart.A new test suite (built on ...

Our Highlights from HashiConf 2018
2 months ago, ambassador

Some of the Datawire team were in San Francisco last week, and so we popped into HashiConf, which is the premier conference run by the HashiCorp team. There were a lot of great conversations, some superb breakout sessions, and many interesting HashiCorp product announcements too. The Fairmont Hotel was also a fantastic location, and the food and drink supplied throughout day (coffee++) were awesome too!Nic Jackon emceeing at HashiConf 2018Declare all-the-things (now also with for loops)Day one s...

TLS/SSL termination in Kubernetes with Ambassador
2 months ago, ambassador

Photo by Jon Moore on UnsplashHow do you insure encrypted connections between your end users and your services running in Kubernetes?The common solution to this problem is to use a reverse proxy or API Gateway. Clients send encrypted requests over TLS/SSL to the reverse proxy, which handles TLS termination.In building TLS support into Ambassador, we’ve discovered a myriad of use cases associated with TLS/SSL termination and Kubernetes. This post outlines the common approaches that we’ve seen for...

Ambassador 0.50 EA 4 is available, supporting rate limiting and Envoy 1.8
2 months ago, ambassador

Ambassador 0.50 EA 4 is now available. Ambassador 0.50 includes some significant architectural changes to Ambassador:Ambassador now uses Envoy’s v2 configuration, which allows us to support many commonly requested features such as SNI and gzip compression.Ambassador has vastly improved connection draining semantics under load (> 1000 requests per second), as Ambassador 0.50 uses Envoy’s Aggregated Discovery Service API for configuration changes, instead of hot restart.A new test suite (built on ...

Next